[Cryptography] Blockchained code signing.

Jerry Leichter leichter at lrw.com
Sun May 7 21:04:31 EDT 2017

> Someone brought up the Apple code signing infrastructure. Yes, there is an issue there, yada, yada. And not just with Apple, it is a basic problem with signing any platform: How do you know the distribution is to be trusted?
That was me, in the context of compelled actions by the provider.

> Here is how: You use Certificate Transparency. 
> Only instead of enrolling certificates, you enroll signatures on code releases. And you establish an update process that ensures that code updates will only be retrieved if the signature is properly enrolled.
No help at all.  If the US government - or another government with the power to enforce it's desires - comes to Apple and ordera "build us a distribution with the following modifications, and sign it just as you would any other distribution", no technological measure can possibly help.

Of course, in the US, that would lead to some interesting legal arguments; but that's a separate issue.
                                                        -- Jerry

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20170507/e8dcfde0/attachment.html>

More information about the cryptography mailing list